Rising Trend of OneNote Documents for Malware delivery
Authored By Anandeshwar Unnikrishnan,Sakshi Jaiswal,Anuradha M McAfee Labs has recently observed a new Malware campaign which used malicious OneNote documents to entice users to click...
Russian Cyberwarfare Documents Leaked
Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking...
thunderbird-stable-3820230330113811.1
FEDORA-FLATPAK-2023-eafa2319cb Packages in this update: thunderbird-stable-3820230330113811.1 Update description: Thunderbird 102.9.1 release. For details, see https://www.thunderbird.net/en-US/thunderbird/102.9.1/releasenotes/ Switch to F38 flatpak runtime Read More
Supply Chain Attack Through 3CX Desktop App
FortiGuard Labs is aware that a digitally signed 3CX desktop app was reportedly used in a supply chain attack against 3CX Voice over Internet Protocol...
CVE-2022-23522
MindsDB is an open source machine learning platform. An unsafe extraction is being performed using `shutil.unpack_archive()` from a remotely retrieved tarball. Which may lead to...
North Korean Hackers Use Trojanized 3CX DesktopApp in Supply Chain Attacks
Windows and Mac versions of the software were compromised to deliver infostealers Read More
CVE-2022-30351
PDFZorro PDFZorro Online r20220428 using TCPDF 6.2.5, despite having workflows claiming to correctly remove redacted information from a supplied PDF file, does not properly sanitize...
CVE-2022-30350
Avanquest Software RAD PDF (PDFEscape Online) 3.19.2.2 is vulnerable to Information Leak / Disclosure. The PDFEscape Online tool provides users with a "white out" functionality...
Clipboard-injecting malware disguises itself as Tor browser, steals cryptocurrency
Malware, disguised as copies of Tor, has stolen approximately US $400,000 worth of cryptocurrency from almost 16,000 users worldwide. Read More
Over 70% of Employees Keep Work Passwords on Personal Devices
95% of security leaders are also concerned about phishing attacks via private messaging apps Read More